Data Privacy at Risk: Ransomware Attack on Prosthetics and Orthotics Business

Incident Date:

April 27, 2024

World map

Overview

Title

Data Privacy at Risk: Ransomware Attack on Prosthetics and Orthotics Business

Victim

Human Technology Prosthetics and Orthotics

Attacker

Inc Ransom

Location

Memphis, USA

Tennessee, USA

First Reported

April 27, 2024

Ransomware Attack on Human Technology Prosthetics and Orthotics

Company Profile

Human Technology Prosthetics and Orthotics, based in Murfreesboro, Tennessee, is a family-owned business established in 1982. Specializing in prosthetic and orthotic solutions, the company has a reported annual revenue of approximately $7 million. They are known for their innovative approach in the design, manufacture, and application of orthoses and prosthetics, catering to patients with limb loss, amputation, or musculoskeletal conditions. Their product range includes advanced items like breathable soft skin air liners and carbon fiber ankle-foot orthoses. The company also prides itself on personalized patient care and expert insurance navigation services.

Details of the Ransomware Attack

The ransomware group INC Ransom, known for its attacks on healthcare and government sectors, has recently claimed responsibility for a cyberattack on Human Technology Prosthetics and Orthotics. The attack was announced on their dark web leak site, where they threatened to release stolen data, including sensitive medical documents, unless their demands are met. This incident marks a continuation of INC Ransom's pattern of targeting organizations where data privacy is critical.

Vulnerabilities and Industry Impact

The attacked company operates in a sector where patient data is both sensitive and highly regulated. The nature of their business involves storing substantial amounts of personal health information (PHI), making them an attractive target for ransomware groups like INC Ransom. The attack not only risks the privacy of thousands of patients but also highlights the ongoing vulnerabilities within the healthcare-related industries to ransomware attacks.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.